Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
File:                     lwhyRZO0dTF1shSBLPaJGmRfhMU.mft (raw, json)
Hash identifier:          dCCxpX4VCQkY9FtkdxB4AiQDb2zDZqrC8dPIDC7JMdk=
Subject key identifier:   15:BA:25:73:AB:53:E8:B3:E3:8E:05:D1:2D:31:E1:26:A4:02:27:8D
Authority key identifier: 97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5
Certificate issuer:       /CN=9708724593b4753175b214812cf6891a645f84c5
Certificate serial:       01988BEACA331F4A413C398D10B0199641DA
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
Manifest number:          0149
Signing time:             Fri 08 Aug 2025 23:01:16 +0000
Manifest this update:     Fri 08 Aug 2025 23:01:16 +0000
Manifest next update:     Sat 09 Aug 2025 23:01:16 +0000
Files and hashes:         1: lwhyRZO0dTF1shSBLPaJGmRfhMU.crl (hash: qWqn3r8671WyFC4JtrHavj57RacNM/ujEg3vCjBryfc=)
                          2: tTnQsLwHNO3gLW3S0MP8mMKmk64.roa (hash: DzDj3u7iBFvq9rklayzZVdsYdkT8c0vWssYs/0kky9E=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Sat 09 Aug 2025 20:00:24 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:98:8b:ea:ca:33:1f:4a:41:3c:39:8d:10:b0:19:96:41:da
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9708724593b4753175b214812cf6891a645f84c5
        Validity
            Not Before: Aug  8 23:01:16 2025 GMT
            Not After : Aug  9 23:01:16 2025 GMT
        Subject: CN=15ba2573ab53e8b3e38e05d12d31e126a402278d
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:ed:a8:7e:f8:81:ce:84:59:e5:8b:67:0b:48:
                    4d:55:4b:5d:cd:6f:fa:a1:34:d0:3b:7a:6c:1d:61:
                    df:bb:19:81:98:77:25:ae:c8:62:ab:f6:52:46:fa:
                    ba:e4:f3:4b:36:cf:a9:8d:c8:2d:3d:ee:c7:af:22:
                    55:5d:24:4e:88:65:2e:32:3a:09:31:16:63:bd:2d:
                    20:6e:f6:14:95:a4:55:f9:d9:48:5f:e1:bb:96:de:
                    82:60:e0:3a:7f:97:19:36:be:e3:fd:78:7e:d7:2e:
                    e0:bb:87:c7:a3:4b:48:45:0c:77:95:fa:32:59:44:
                    b5:e3:4a:b4:6e:18:51:0c:26:91:41:69:a2:d1:16:
                    71:2a:8d:01:78:94:5e:2c:d8:6f:3b:b5:a1:c3:d9:
                    25:cb:f8:11:b9:31:44:a9:fc:34:d3:66:a8:81:27:
                    fe:c9:41:7a:66:6e:09:50:09:16:21:81:e3:ee:91:
                    e3:3d:58:dd:e5:4d:f5:c2:c6:28:5e:2e:bf:1a:93:
                    f5:e8:dd:e7:e1:e3:bf:4a:69:5d:5a:44:95:62:f1:
                    e9:7e:f2:6a:b4:98:42:2a:7a:a4:ec:0d:23:92:89:
                    8d:64:64:90:88:29:30:90:78:e6:7a:ab:75:f7:71:
                    9b:30:34:c7:85:f1:c7:b6:25:2f:7c:80:7e:27:88:
                    9a:4d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                15:BA:25:73:AB:53:E8:B3:E3:8E:05:D1:2D:31:E1:26:A4:02:27:8D
            X509v3 Authority Key Identifier:
                keyid:97:08:72:45:93:B4:75:31:75:B2:14:81:2C:F6:89:1A:64:5F:84:C5

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lwhyRZO0dTF1shSBLPaJGmRfhMU.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ae8c35-f9d7-437b-8996-32a4278e5bc5/1/lwhyRZO0dTF1shSBLPaJGmRfhMU.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         01:da:c1:ab:99:d7:f9:bf:60:76:93:d4:3f:15:a0:e2:94:88:
         ee:64:2f:d7:ec:f6:ca:b1:18:a1:2a:df:ea:ac:c4:91:f6:64:
         ce:7a:4d:f2:0b:91:fa:34:ee:df:d2:ff:10:34:d1:26:59:77:
         24:29:67:9f:23:d5:a6:cc:9d:fd:04:cf:f7:81:d8:4c:47:36:
         c6:f1:92:5f:b4:d9:34:92:e7:86:26:5a:91:87:46:78:e6:c8:
         a7:06:f1:6d:5f:64:18:d5:d6:ad:cb:a0:63:09:3d:7e:d3:24:
         5c:0b:0b:12:bc:a0:44:e6:bb:55:b6:91:62:99:d7:a8:92:cf:
         fa:90:97:04:46:c7:85:60:07:80:63:9d:c3:04:f0:5d:2a:c3:
         94:d3:32:6c:88:c9:aa:db:46:27:05:58:fd:3d:79:4e:0c:92:
         47:4b:f8:d4:79:8e:b2:82:de:71:98:d1:29:94:36:48:75:e9:
         8c:69:b2:60:8d:07:8c:b3:3f:29:38:c4:94:cf:e9:df:72:72:
         02:28:9a:f9:e1:94:64:90:dc:c4:c1:ab:09:85:7b:a9:6f:30:
         8e:d1:9d:29:1a:e8:63:ff:8a:f5:5b:51:ee:50:60:14:85:75:
         bf:9f:19:62:ec:48:60:62:2f:69:87:c0:5f:89:c8:18:7a:0c:
         33:22:c4:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 05:52:08 2025 by rpki-client